## Mercor Hit by Cyberattack Linked to LiteLLM Open-Source Compromise
Mercor, a talent platform, has disclosed it was impacted by a recent cyberattack. The company confirmed that the incident is tied to the compromise of the open-source LiteLLM project, highlighting a growing concern around supply chain vulnerabilities in the software ecosystem.
The attack against Mercor appears to be a ripple effect of the LiteLLM project’s compromise, where malicious code was reportedly injected into a widely used component. While details of the specific impact on Mercor users are still emerging, the company’s announcement underscores the severe risks faced by organizations relying on third-party libraries and open-source tools. This incident serves as a stark reminder for companies to maintain vigilant security practices and robust supply chain audits, especially when integrating external components into their critical infrastructure.